CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
92.5%
Stack-based buffer overflow in the CG_ServerCommand function in Quake 3 Engine as used by Soldier of Fortune 2 (SOF2MP) GOLD 1.03 allows remote attackers to cause a denial of service and possibly execute code by sending a long command from the server.
Vendor | Product | Version | CPE |
---|---|---|---|
id_software | quake_3_engine | 1.32b | cpe:2.3:a:id_software:quake_3_engine:1.32b:*:*:*:*:*:*:* |
id_software | quake_3_engine | 1.32c | cpe:2.3:a:id_software:quake_3_engine:1.32c:*:*:*:*:*:*:* |
id_software | quake_3_engine | icculus_812 | cpe:2.3:a:id_software:quake_3_engine:icculus_812:*:*:*:*:*:*:* |
raven_software | soldier_of_fortune_2 | 1.03 | cpe:2.3:a:raven_software:soldier_of_fortune_2:1.03:*:*:*:*:*:*:* |